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ABSTRACT: 



Communication information transmitted in the broadband communication system 
may be in a packet format and secured using encryption techniques, for example 
encryption software, including a means for providing an initial security key and updated 
security keys to the various pieces of communication equipment located throughout the 
broadband communication system. When communication equipment, for example a 
gateway, is first registered with, for example, an IP central station, the IP central station 
assigns an initial encryption key to the gateway that is assigned and retained by a server, 
for example a call manager (CM) server, and the gateway (e.g., broadband residential 
gateway (BRG) ). This initial encryption key may be used to establish a secure two way 
communication between two pieces of communication equipment as an originating point 
communication equipment (OPCE) and a terminating point communication equipment 
(TPCE), for e xample, the BRG (OPCE) and the CM (TPCE), the BRG (OPCE), BRG1, 
and anoth e r BRG (TPCE), BRG2, or the BRG and a gateway for int e rfacing with anoth e r 
communication system (e.g. VG). When e ver a u se r first activates a secur e 
communication featur e b e fore or during a communication ses s ion, the origination point 
communication equipment ( e .g., BRG1) will not s e nd th e t e rminating point 
communication equipment (e.g., BRG2) a packet including a privat e k e y which may b e 
th e BRG's initial e ncryption key. Subsequ e ntly th e two piec e s of communication 
equipm e nt will encrypt and decrypt communication pack e ts to on e anoth e r using the 
privat e k e y. The s e cur e d e ncrypted pack e ts may b e part of on e or mor e l e gs in, for 
e xampl e , a conf e r e nc e call, a t e l e conf e r e nc e , or a multim e dia s ession. Th e e ncryption 
k e y may b e r e p e at e dly updated and changed at variou s tim e int e rvals. Th e r e p e at e d 
updates may b e at periodic ( e .g., daily) or at random time int e rvals. Updat e s of th e 
e ncryption key may occur wh e n th e s e cur e call f e atur e is activ e or inactiv e . For 
additional security th e syst e m may assign a uniqu e randomly gen e rated e ncryption k e y to 
each packet during th e communication session and provid e e ach n e w k e y to th e 
communication equipm e nt (e.g., BRG) in each prior information pack e t transmission. A 
s e cur e call f e atur e may be activated and d e activated by th e us e r at anytim e b e for e or 
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during (i.e., r e al time activation) an existing communication session. Th e secur e call 
featur e may b e used to s ecur e on e typ e of m e dia using encryption whil e not securing 
other types of m e dia in a multimedia communication s ession. Alt e rnativ e ly, diff e r e nt 
m e dia types, for e xample audio, text, and multimedia audio and video, may b e s e cured at 
diff e r e nt levels of se curity using for e xampl e diff e rent encryption typ es or algorithms 
( e .g., DES, PGP, RSA, etc.). A server, for e xampl e a call manger (CM), may coordinate 
a secure communication b e tw ee n two pi e c e s of communication equipment by translating 
between two different encryption algorithms in two separate l e gs of a communication 
session ( e .g., a t e lephon e call). Alternatively, th e server may send encryption algorithm s 
to a piece of communication equipment so that the various pieces of communication 
equipm e nt ar e u s ing the same algorithm. Control of the secure communication may be * 
tran s f e rr e d from, for exampl e an originating gateway to a terminating gat e way. In this 
case th e e ncryption of a secur e communication session may begin by using the 
originating gateway's key but then start u s ing th e t e rminating gateway's key. Th e on n e t 
communication s , for e xampl e t e lephone calls, within the broadband communication 
s ystem may be encrypted but the on n e t to off n e t communications for e xample t e l e phone 
call s including PSTN portion, may be partially encrypted. Onc e th e communication 
e nt e rs for e xample th e PSTN, it has only that security provided by the traditional wir e lin e 
PSTN. 
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